Commit graph

248 commits

Author SHA1 Message Date
a443d56a1c
Add a gitea deployment
Yep, it's that time of year _again_
2023-01-27 17:28:45 +00:00
120b7d97c4
Explicitly allow cross-domain DMARC reports 2023-01-26 12:11:01 +00:00
d08268baba
Remove pct tag from DMARC
This is the default
2023-01-26 12:02:12 +00:00
7a89e7f3bc
Define alert contacts for uptimerobot monitors 2022-12-09 19:05:35 +00:00
e86ed81102
Decommission decker server
It's been replaced by prometheus running internally, and uptimerobot checking.
2022-12-09 19:04:54 +00:00
413400cbc6
Terraform uptimerobot 2022-12-08 21:55:03 +00:00
e89f13b8a9
Add collabora 2022-12-02 22:37:42 +00:00
3ec359ed0e
Deploy me a mastodon 2022-11-18 09:12:28 +00:00
c91b1ba871
Allow website to handle traffic to second domain 2022-11-16 14:56:17 +00:00
77e83fec6d
Fix synapse-admin URL
It no longer supports being run on a subdirectory with the stock container
2022-11-07 13:57:14 +00:00
d81ed290d7
Put the new website live 2022-10-30 12:04:15 +00:00
58730fcbeb
Move pages hosting to GitLab pages 2022-10-09 18:26:49 +01:00
6d890a6991
Setup slides domain 2022-10-08 17:37:28 +01:00
41582f50db
Set up GitLab pages 2022-10-08 15:51:37 +01:00
1eaa33e664
Add DMARC to mailgun 2022-09-22 21:29:21 +01:00
8c1f088b19
Harden DMARC and SPF rules
Hopefully people still get my emails...
2022-09-22 21:26:26 +01:00
6268c0f451
Add DNS records for mailgun 2022-09-22 21:22:05 +01:00
72795591ac
Add DMARC 2022-09-22 21:12:41 +01:00
f49b26c6f0
Deploy authentik
Not integrated into other services quite yet. But it's there
2022-09-18 18:49:17 +01:00
cc3f980d34
Deploy tandoor 2022-08-24 22:17:29 +01:00
b62f8001bb
Deploy commento++ 2022-06-05 15:44:49 +01:00
da450c08dd
Decommission k8s environment
Need a little more time in the playground before I have use of a production-grade environment. Especially when it's costing $20/mo
2022-05-02 21:44:33 +01:00
b8736e1c65
Create VPN for port 53 2022-03-18 19:44:06 +00:00
812e828862
Allow unprivileged ports to access cluster
This is needed for ingress-nginx
2022-03-07 20:32:14 +00:00
3ad719a4e7
Init a k8s
May god have mercy on my ~soul~.

The firewall config may not be valid, due to node recycling, but here's hoping!
2022-03-03 21:50:24 +00:00
2715161929
Make sure SSH port is exposed on grimes
This is needed for dokku deployments
2022-03-03 20:29:53 +00:00
293aed0fd3
Enable GitLab registry 2022-02-25 21:48:13 +00:00
6b63c2685b
Add an additional domain for matrix
I'll migrate over to this eventually. But doing a hard migration has just wasted my entire evening...
2022-02-13 20:54:46 +00:00
722b964bc9
Add Google Search Console integration to Plausible 2022-02-13 16:43:09 +00:00
151c5bc1d9
Decommission casey instance in vultr
The end of an era, my oldest server.
2022-01-30 21:00:38 +00:00
af396a21cb
Provision a new caseyon Linode 2022-01-21 21:52:21 +00:00
619d5bfa7b
Give every cloud machine its own cname 2022-01-19 08:44:21 +00:00
af07840de7
Harden SPF 2022-01-19 08:19:51 +00:00
db68c107d0
Decommission decker on Vultr 2022-01-11 19:25:04 +00:00
ceb62cc0c8
Open the right ports so web traffic will flow 2022-01-11 09:08:23 +00:00
cf0e718bfb
Migrate decker services to linode
Mostly just uptime-kuma
2022-01-11 09:07:48 +00:00
50398eac07
Commit the terraform lock file
It tells you to
2022-01-08 22:12:44 +00:00
e50a1f9a72
Privision a decker on linode 2022-01-08 22:12:28 +00:00
0a13f78d29
Add linode to terraform setup
Let the migration, begin!
2022-01-08 22:11:34 +00:00
66c48c4a69
Remove old domain for vaultwarden
It's been long enough
2021-12-22 15:41:14 +00:00
ccaff503da
Move decker from AMS to Paris
The AMS DC has a bit of a flaky network connection, which isn't what you want for monitoring.
2021-11-06 16:45:09 +00:00
4db474034e
Ignore my VMs from a fail2ban 2021-09-27 14:49:56 +01:00
7e2d01c612
Change domain
Now there's a status page, we can consider it public
2021-09-25 21:34:18 +01:00
8a37a9d41b
Move uptime-kuma to decker 2021-09-25 21:03:56 +01:00
bf73cfa846
Close some ports which don't need to be open 2021-09-25 17:04:28 +01:00
a135aae5f3
Provision new VM
This will be used for monitoring
2021-09-25 16:59:23 +01:00
f3bc72d2ba
Provision uptime-kuma 2021-07-31 16:43:12 +01:00
7f597dbf87
Serve notes from dokku 2021-06-26 21:30:04 +01:00
e3502ae1e0
Provision dokku server 2021-06-20 12:12:34 +01:00
b20ffb27c4
Remove gotify
Never used it
2021-06-12 19:00:39 +01:00
d751a023da
Promote GitLab to main git. domain 2021-06-02 19:49:28 +01:00
69abafd8c8
Put GitLab on a real domain 2021-05-29 16:21:47 +01:00
48e07d2a7e
Rename more bitwarden things
Serving on both domains currently, i'll migrate clients and fix that
2021-05-18 22:18:05 +01:00
71a30c8815
Reduce history for TF state 2021-05-18 19:33:38 +01:00
9b31efbf43
Destroy grimes
And the entire Linode integration
2021-05-05 18:11:14 +01:00
6f18178233
Remove stray extra domain 2021-05-02 17:32:39 +01:00
b6696e87f2
Make 0rng DNS alias primary domain
CNAME's are good for this
2021-05-02 17:32:27 +01:00
ad415c2b53
Move website to walker 2021-05-02 17:24:10 +01:00
86482246b3
Move plausible to walker 2021-05-02 16:07:25 +01:00
1fcc63a5da
Move upload 2021-04-24 22:14:29 +01:00
c048e6d20e
Provision walker 2021-04-24 21:59:53 +01:00
3976dd607d
Provision walker VPS 2021-04-19 21:26:22 +01:00
7580c0fd59
Remove walker for now
Tried to use alpine, Nebula doesn't like it. Will use Debian, and recreate the machine when I have more time
2021-03-26 21:58:24 +00:00
e80bcb5a8b
Move generic vultr firewall stuff into module
Modules are pretty nice!
2021-03-23 22:33:10 +00:00
95e97ef757
Iterate over firewall ports
I'll convert this to a module some day, honest!
2021-03-23 22:09:48 +00:00
70829dc617
Provision walker server
This will eventually replace `grimes`
2021-03-23 21:31:31 +00:00
ba8220cff2
Remove minecraft port forward 2021-03-23 21:23:45 +00:00
bbfe85b2c8
Update vultr provider
This was a pretty breaking change which required re-importing most of its state
2021-03-23 21:22:31 +00:00
a43dac3a80
Actually add bitwarden DNS 2021-03-21 21:03:47 +00:00
f6559ff1bd
Remove collabora
It doesn't seem to like being run inside LXC. I barely used it, anyway.
2021-03-12 23:35:39 +00:00
ec0c78e6d9
Read emails from secrets 2021-02-14 12:29:14 +00:00
3014e5d052
Provision privatebin 2021-02-12 23:32:31 +00:00
1ddb68224e
Nebula actually runs over UDP
derp
2021-01-30 18:16:10 +00:00
89a6c7680c
Decommission walker
Kimsufi is just too annoying of a host. Everything has either been moved off, killed, or has further plans.
2021-01-28 18:56:39 +00:00
b339cb0e2d
Move upload to grimes 2021-01-28 14:04:55 +00:00
3de14efd9e
Remove heimdall
I've literally not used it since setting it up
2021-01-26 21:53:52 +00:00
a44a79031a
Init some skeleton nebula stuff 2021-01-25 21:53:04 +00:00
0ecd884a9a
Deploy yourls 2021-01-22 21:29:27 +00:00
f519b18d38
Move website over to traefik-pages
Woo rust!
2021-01-17 21:41:32 +00:00
bef2468f12
Add gitea domain
Configuration to come
2021-01-17 17:03:12 +00:00
ac4a93e0ed
Setup DNS for pages 2021-01-17 12:49:23 +00:00
48e23e8c00
Track new linode instance in terraform
The definition is pretty verbose. Apparently it does that if you create it through the UI
2020-12-05 13:25:50 +00:00
87120ae0f3
Pin terraform provider versions 2020-12-04 23:11:25 +00:00
a81e2793f8
Add a secondary domain for plausible less likely to match blockers
Might change things, might not. But it's a fun experiment to try anyway.

Using a custom middleware to override the path due to https://github.com/plausible/analytics/pull/340
2020-11-25 11:11:29 +00:00
5496744428
Remove web-rng 2020-10-09 23:11:53 +01:00
7f09db5d20
Add heimdall 2020-10-07 14:09:23 +01:00
84846054df
Remove snippets host 2020-10-01 19:28:38 +01:00
4742552839
Add notes site 2020-09-30 18:49:36 +01:00
07b0650618
Remove statping
It's buggy as all hell, super slow, and doesn't really get used for monitoring
2020-09-27 14:17:46 +01:00
9ca2546766
Decommission grimes
Most of the function has moved to `walker`
2020-09-10 20:39:54 +01:00
4f48c11775
Fix variable spacing 2020-09-05 20:38:14 +01:00
ea54d1be69
Expose pages sites 2020-09-05 20:33:57 +01:00
b30e696dad
Slow down requests to vultr
This thing has a super crazy rate limit!
2020-09-05 17:10:53 +01:00
77113246b0
Remove remaining gitea configuration
Goodbye old friend
2020-09-05 16:56:27 +01:00
c1dc26ce35
Install gitlab pages daemon
I'll deal with traefik domains later
2020-09-05 16:50:56 +01:00
306952d5d2
Add gitlab dns record to terraform 2020-08-30 17:46:52 +01:00
ccebeb8f78
Fix formatting 2020-08-27 17:36:59 +01:00
8add979d82
Update img and dl subdomains on short domain to correct IP 2020-08-27 17:15:54 +01:00
3589421c00
Update terraform for 0.13 compatibility 2020-08-23 17:27:05 +01:00
0902dd001e
Expose grafana 2020-08-07 12:03:45 +01:00
e184c7fba1
Move website over to walker 2020-08-04 20:54:53 +01:00
f77cd1216f
Move upload server to walker 2020-07-24 17:14:39 +01:00
9ee4e1c14b
Add plausible analytics 2020-07-21 20:55:44 +01:00
b7aebfaabd
Move statping to new machine
Also update it to the latest version. It's probably still buggy AF, but it'll do for what I need it to rigth now.
2020-07-14 19:35:55 +01:00
f1170b8a9b
Move walker IP into variable
The OVH provider is "completely fucked"!
2020-07-14 19:19:54 +01:00
eed13e3727
Setup offsite storage service
My own lil' S3
2020-07-12 21:01:06 +01:00
93b4bef05d
Add home-assistant 2020-06-27 16:16:52 +01:00
f5b0df3b95
Remove obsolete DNS records 2020-06-24 18:50:18 +01:00
7119d5877f
Only expose deluge to internal network
And VPN
2020-06-24 18:48:30 +01:00
dd12b795b5
Remove pihole
Internal VPN server is working just perfectly instead
2020-06-24 18:46:13 +01:00
e54ec1312c
Replace onlyoffice with collabora 2020-06-07 21:09:02 +01:00
851f750948
Move duplicati to its own role so it can be installed on grimes 2020-05-25 17:25:58 +01:00
9850f73a17
Deploy web-rng
https://github.com/RealOrangeOne/web-rng
2020-05-17 18:04:44 +01:00
851c6b167c
Remove yourls
Mariadb update broke it, but I never use it anyway.
2020-05-14 13:54:59 +01:00
19fc0c0957
Add shorter URLs for upload 2020-05-08 21:45:27 +01:00
2f523075ae
Add upload server 2020-05-08 21:27:32 +01:00
d1ba7d8e80
Expose proxy to web
This means it doesn't need to go via VPN
2020-05-05 22:03:32 +01:00
957d4d7b69
Only use a single domain for YOURLS 2020-04-26 16:33:05 +01:00
bfce9e1cbf
Host statping outside home 2020-04-26 15:37:28 +01:00
7c6abc33fe
Host website outside home 2020-04-26 14:26:48 +01:00
0bd4b5f5fd
Provision a new VPS 2020-04-26 12:15:52 +01:00
3e523bd04b
Remove traefik subdomain 2020-04-25 12:15:28 +01:00
975ba9a2ed
Remove netdata domain 2020-04-23 21:16:48 +01:00
303283f73e
Remove portainer 2020-04-19 21:42:57 +01:00
d0c36adba8
Self host my website 🎉 2020-04-10 11:31:01 +01:00
c634b87991
Expose MC server
It's just a local temp config for now, i'll do something proper later
2020-04-07 18:43:40 +01:00
7b0cc0893d
Add shorter domain for whoami container 2020-04-03 23:59:07 +01:00
20e114f9b3
Enable bucket versioning for tfstate 2020-04-02 18:26:18 +01:00
95c3e46783
Setup shorter yourls domain 2020-03-20 22:29:43 +00:00
5bb2c3b868
Add matrix SRV record 2020-03-20 22:11:43 +00:00
5564709544
Remove the.-rng.one
Turns out it only redirects if I set it up to, which is annoying
2020-03-20 22:03:45 +00:00
f3c4c75d2c
Add 0rng.one domain 2020-03-20 22:02:37 +00:00
3b6b643d95
Add the tonne of records for apps to casey 2020-03-20 21:52:00 +00:00
2712e0df56
Add jakehoward.tech and fastmail records 2020-03-20 21:39:36 +00:00
0d84df3e68
Add netlify records 2020-03-20 21:38:18 +00:00
c328cca4dd
Add mail records for theorangeone.net
Including DKIM, which apparently I never setup
2020-03-20 21:12:24 +00:00
22c0e746c2
Add resources for theorangeone.net forwarding domains 2020-03-20 20:57:23 +00:00
d7bb71d14b
Remove terraform modules
Makes sharing variables between modules (which i'd have to do) incredibly difficult. So flat with naming conventions it is!
2020-03-20 20:47:13 +00:00
98bbf12f2d
Fix spacing so it looks like valid terraform 2020-02-22 23:43:00 +00:00
a307c53808
Terraform the tfstate bucket
It's terraform all the way down
2020-02-22 23:41:01 +00:00
a80cc472cc
Add casey firewall config 2020-02-22 22:22:32 +00:00
ac6210d618
Move domains stuff under domains module 2020-02-22 20:28:59 +00:00
f37519246a
Setup cloudflare terraforming 2020-02-22 20:22:28 +00:00
29aee58a2e
Format terrsform again 2020-02-21 22:16:08 +00:00
2471b4f843
Move backend to S3 based 2020-02-21 22:15:32 +00:00
63aa3a7216
Drive part of ansible context from terraform 2020-02-21 21:51:16 +00:00
0e1cd2e0e1
Fix linting 2020-02-21 19:46:40 +00:00
a3cc0f7849
Init terraform 2020-02-21 18:44:25 +00:00